Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
File: jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft (raw, json)
Hash identifier: WCVr9KWaIzL64ZWu+Z6hZXolWn+4LSz2TmOoNd/oSFs=
Subject key identifier: 43:67:17:40:4C:F5:69:78:CF:98:20:AF:EA:28:E2:9E:AB:9B:AF:E5
Authority key identifier: 8E:79:CE:F4:58:DE:50:39:2E:3C:02:B6:91:82:F3:4C:60:14:8D:24
Certificate issuer: /CN=8e79cef458de50392e3c02b69182f34c60148d24
Certificate serial: 019A2176E3F31FF4BFB8FC692127B84711D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
Manifest number: C5
Signing time: Sun 26 Oct 2025 17:00:30 +0000
Manifest this update: Sun 26 Oct 2025 17:00:30 +0000
Manifest next update: Mon 27 Oct 2025 17:00:30 +0000
Files and hashes: 1: FjU0H7vPdjT4WlcuRh8u9jonq80.roa (hash: FVDMMIfr/P3OKDJ02oDTFPsyvxmI1cgf33doeyF5iQw=)
2: jnnO9FjeUDkuPAK2kYLzTGAUjSQ.crl (hash: N7R12Gx9DXkt/PWZDFwbOg5xeQzKR3Mf/6sVdfWIMwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 17:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:76:e3:f3:1f:f4:bf:b8:fc:69:21:27:b8:47:11:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e79cef458de50392e3c02b69182f34c60148d24
Validity
Not Before: Oct 26 17:00:30 2025 GMT
Not After : Oct 27 17:00:30 2025 GMT
Subject: CN=436717404cf56978cf9820afea28e29eab9bafe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:4a:b1:72:16:c5:7b:dd:90:c7:5a:f0:ac:05:
78:74:c2:a7:12:2d:10:76:e8:66:3c:3a:1b:53:00:
af:53:fb:e1:89:bf:5c:26:f6:da:97:4c:bb:be:b0:
5f:72:5c:ef:84:e4:76:6f:1e:af:7f:51:01:4f:f7:
34:41:ce:ad:41:d0:af:c0:0f:9f:ca:d6:3e:db:aa:
80:5d:fa:95:a9:42:44:6b:44:25:44:68:14:01:05:
be:ec:6a:df:6b:db:26:31:48:d8:df:f7:22:32:a6:
9f:4c:9d:8e:44:79:78:8a:7f:af:e3:60:89:de:0d:
7e:db:07:01:ac:12:df:d5:52:eb:02:dd:f4:36:cd:
70:a5:5f:58:03:89:a8:0c:fd:99:64:27:0f:82:06:
15:e7:36:ab:05:8d:72:d7:29:ce:3d:86:4f:4b:38:
4f:17:9e:1f:64:30:83:b6:9e:26:d0:2e:35:f8:0f:
f4:fb:d3:cf:bf:0d:18:8f:3b:55:70:3a:5e:51:be:
f6:e5:1b:a1:a2:c0:14:c6:d3:41:ab:02:c0:80:7c:
34:c0:8e:c3:a3:49:55:18:fd:24:db:64:45:39:07:
f4:8f:ed:80:f5:cd:e3:8d:80:fc:74:da:f2:b8:15:
94:40:c7:af:95:af:53:fb:29:89:b8:6b:1a:a9:04:
e7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:67:17:40:4C:F5:69:78:CF:98:20:AF:EA:28:E2:9E:AB:9B:AF:E5
X509v3 Authority Key Identifier:
keyid:8E:79:CE:F4:58:DE:50:39:2E:3C:02:B6:91:82:F3:4C:60:14:8D:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:92:0d:1c:b9:4b:9a:7e:d5:f4:4d:4b:5e:74:7f:5a:41:a6:
d4:57:21:bf:35:70:44:bc:0b:dc:e5:20:44:3c:75:3e:fe:2a:
a4:26:5c:0f:a3:36:f8:9c:8e:b4:7f:f6:22:15:85:32:f9:de:
b6:22:07:13:b0:d0:9b:63:e1:fc:52:4d:b6:f0:3f:e4:b2:ed:
a7:d5:07:db:d3:9d:65:da:65:64:e4:c1:26:05:3e:46:28:07:
bd:e8:5d:b7:59:a3:0f:8d:4a:49:8b:ef:bd:fe:e9:e7:ad:b5:
19:67:65:be:34:4e:cd:cc:ba:55:d7:4b:5e:36:9f:98:8a:d0:
45:7a:da:da:41:70:94:6d:eb:e0:8e:48:5c:9a:03:af:ad:cd:
54:52:dc:e5:43:38:e3:55:59:62:1f:32:1a:d1:70:b7:4e:0e:
f2:4b:b8:14:0f:4a:c6:28:b7:dd:3f:9e:9c:9f:b7:43:2c:1e:
8b:40:dd:09:0a:2e:83:05:c7:8b:f2:08:6a:43:12:70:a8:4f:
54:aa:d3:44:ca:51:c1:d5:88:eb:56:1b:35:84:4b:81:0a:72:
e6:f2:b6:fb:fb:7b:56:da:e5:28:72:24:b7:64:1c:c8:a0:f8:
3c:c3:9d:e5:ea:21:f6:66:3a:72:52:86:1e:bd:14:bc:a6:57:
fe:58:e3:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 01:44:43 2025 by rpki-client